Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / CGI abuses / PHP < 5.2.4 Multiple Vulnerabilities
server monitoring

PHP < 5.2.4 Multiple Vulnerabilities
Article ID: 25971
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 668
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

PHP < 5.2.4 Multiple Vulnerabilities
This script is Copyright (C) 2007-2008 Tenable Network Security, Inc.

FamilyCGI abuses
Plugin ID25971
Bugtraq ID24661
24261
24922
25498
CVE IDCVE-2007-2872
CVE-2007-3378
CVE-2007-3806

Description:

Synopsis :

The remote web server uses a version of PHP that is affected by
multiple flaws.

Description :

According to its banner, the version of PHP installed on the remote
host is older than 5.2.4. Such versions may be affected by various
issues, including but not limited to several overflows.

See also :

http://www.php.net/releases/5_2_4.php

Solution :

Upgrade to PHP version 5.2.4 or later.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
This article was:   Helpful | Not Helpful
Prev   Next
PHPNews prevnext Parameter SQL Injection Vulnerability     Simple PHP Blog config/users.php Arbitrary User Password Hash...

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events